Hi,
[...] b.t.w. The Packet Filter "ipchains" from Linux is NO firewall, it's a packet filter. A usable firewall needs application layer and stateful inspection, too. By combining the diffent freeware tools (inc. ipchains) you can configure a nearly complete firewall. The new 2.4 Kernel "iptables" will have functions for stateful inspection.
a short newbie question:
which freeware tools should I use to setup a "nearly complete" Firewall and why do I need application layers for a simple network setup with only www, ssh and smtp configured?
Sorry, 've possible used wrong words... A usable firewall does three things: 1. Packet filter to allow/deny IP packages from different sources 2. Stateful Inspection to control the status of an connection 3. Application Layer Filer to filter malicious code from e-Mails, www, ftp and other services 1. Use "ipchains" 2. Use "iptables" (Kernel 2.4) 3. Use Squid for Proxy, SuSE's ftp-proxy, SMTPWDD, AVP and other tools 4. There's no possibility to filter for malicious code in crypted IP-Packages (ssh, ssl, ipsec etc.) Yours, Oliver Grube * Reverse Hacking: root-Passwort is "./mmG8-n", find the right system...******************************************** iT_SEC - enabling trusted ebusiness ******************************************** iT_SEC Deutschland GmbH Dünner Straße 247, 41066 Mönchengladbach Telefon: 02161/6897-0, Fax: -199 http://www.de.it-sec.com Wir freuen uns auf Ihren Besuch auf der infosecurity 2000 in Frankfurt vom 31.10.- bis 2.11.2000, Halle 6 Systems 2000 in München vom 6.11.-10.11.2000 Halle C3. 121